N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

• N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
• WSI Update (N-Stalker Update Manager)
• N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

• Active PHP Bookmarks 0.2.5 Head.PHP Remote File Include Vulnerability
• MPM Chat 2.5 View.PHP Local File Include Vulnerability
• Particle Blogger 1.2 Post.PHP SQL Injection Vulnerability
• WBBlog Index.PHP SQL Injection Vulnerability
• WBBlog Index.PHP Cross-Site Scripting Vulnerability
• Oracle Portal 10g P_OldURL Parameter Cross-Site Scripting Vulnerability
• FX-App 0.0.8.1 Multiple HTML Injection Vulnerabilities
• Woltlab Burning Board 2.7 UserGroups.PHP SQL Injection Vulnerability
• DirectAdmin 1.292 CMD_USER_STATS Cross-Site Scripting Vulnerability
• Cyber-Inside WebLog 2006 PASSWD Local File Include Vulnerability
• Holtstraeter Rot 13 Enkrypt.PHP Directory Traversal Vulnerability
• Creative Files 1.2 Kommentare.PHP SQL injection Vulnerability
• Absolute Image Gallery 2.0 Gallery.ASP SQL Injection Vulnerability
• Horde 3.1.3 Framework Login.PHP Cross-Site Scripting Vulnerability
• CCMail 1.0.1 Update.PHP Remote File Include Vulnerability
• Viper Web Portal 0.1 Index.PHP Remote File Include Vulnerability
• GrafX Company Website Builder Pro 1.9.8 Comanda.PHP Remote File Include Vulnerability
• WSN Guest 1.21 Comments.PHP SQL injection Vulnerability
• CARE2X 1.1 Inc_News_Save.PHP Remote File Include Vulnerability
• CARE2X 1.1 Inc_News_Save.PHP Remote File Include Vulnerability
• CARE2X 1.1 Inc_Db_Makelink.PHP Remote File Include Vulnerability
• CARE2X 1.1 Config_Options_Gui_Template.PHP Remote File Include Vulnerability
• CARE2X 1.1 Diagnostics-Report-Index.PHP Remote File Include Vulnerability
• WebCreator 0.2.5 Config/Load.Inc.PHP Remote File Include Vulnerability
• WebCreator 0.2.5 Http/Load.Inc.PHP Remote File Include Vulnerability
• Weekly Drawing Contest 0.0.1 Check_Vote.PHP Local File Include Vulnerability
• X-Ice News System 1.0 DevAMI.ASP SQL Injection Vulnerability
• MySQL Commander 2.7 Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Account.Inc.PHP Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Themes.Inc.PHP Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Template-Mod.Inc.PHP Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Mydb.Inc.PHP Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Log.Inc.PHP Remote File Include Vulnerability
• Open Educational System 0.1 Lib-Group.Inc.PHP Remote File Include Vulnerability
• AssetMan 2.4a PDF_File Parameter Directory Traversal Vulnerability
• ClipShare 1.5.3 ADODB-Connection.Inc.PHP Remote File Include Vulnerability
• Triexa SonicMailer Pro 3.2.3 Index.PHP SQL injection Vulnerability
• PHP-Nuke 8.0 Lang Parameter Local File Include Vulnerability
• Premod SubDog 2.0 Functions_Kb.PHP Remote File Include Vulnerability
• Premod SubDog 2.0 Logger_Engine.PHP Remote File Include Vulnerability
• Premod SubDog 2.0 Themen_Portal_Mitte.PHP Remote File Include Vulnerability
• PHP Labs Top Auction Survey.PHP SQL Injection Vulnerability
• PHP Labs Top Auction Viewcat.PHP SQL Injection Vulnerability
• Duyuru Scripti Goster.ASP SQL injection Vulnerability
• cPanel 10.9 Fantastico Load_Language.PHP Local File Include Vulnerability
• cPanel 10.9 Fantastico Mysqlconfig.PHP Local File Include Vulnerability
• cPanel 10.9 Fantastico Load_Language.PHP Local File Include Vulnerability
• Grayscale Blog 0.8 Detail.PHP SQL Injection Vulnerability
• Grayscale Blog 0.8 Userdetail.PHP SQL Injection Vulnerability
• Grayscale Blog 0.8 Jump.PHP SQL Injection Vulnerability
• PMB 3.0.13 Account.PHP Remote File Include Vulnerability
• PMB 3.0.13 Options.PHP Remote File Include Vulnerability
• PMB 3.0.13 Options_List.PHP Remote File Include Vulnerability
• PMB 3.0.13 Options_File_Box.PHP Remote File Include Vulnerability
• PMB 3.0.13 Resa_Func.Inc.PHP Remote File Include Vulnerability
• PMB 3.0.13 Lieux.Inc.PHP Remote File Include Vulnerability
• PMB 3.0.13 Main.Inc.PHP Remote File Include Vulnerability
• PMB 3.0.13 Clean.PHP Remote File Include Vulnerability
• PMB 3.0.13 Iimport_Expl.PHP Remote File Include Vulnerability
• PMB 3.0.13 Author_See.Inc.PHP Remote File Include Vulnerability
• PMB 3.0.13 Rec_Panier.PHP Remote File Include Vulnerability
• PMB 3.0.13 Edit.PHP Remote File Include Vulnerability
• PMB 3.0.13 Cart.PHP Remote File Include Vulnerability
• PMB 3.0.13 Autorites.PHP Remote File Include Vulnerability
• PostNuke Phgstats 0.5 Module Remote File Include Vulnerability
• SoftNews Media Group DataLife Engine 5.5 Init.PHP Remote File Include Vulnerability
• SoftNews Media Group DataLife Engine 5.5 Editnews.PHP Remote File Include Vulnerability
• PHP Labs JobSitePro 1.0 Search.PHP SQL injection Vulnerability
• NukeSentinel 2.5.6 Multiple SQL Injection Vulnerabilities
• Work System ECommerce 3.0.41 Include_Top.PHP Remote File Include Vulnerability
• WordPress 2.1.2 WP_Title Function HTML Injection Vulnerability
• HC Design NewsSystem 1.4 Index.PHP SQL Injection Vulnerability
• Coppermine Photo Gallery 1.4.10 Index.PHP Remote File Include Vulnerability
• Coppermine Photo Gallery 1.4.10 Plugin_Api.Inc.PHP Remote File Include Vulnerability
• Coppermine Photo Gallery 1.4.10 Picmgmt.Inc.PHP Remote File Include Vulnerability
• Coppermine Photo Gallery 1.4.10 Functions.PHP Remote File Include Vulnerability
• Coppermine Photo Gallery 1.4.10 Image_Processor.PHP Remote File Include Vulnerability
• Coppermine Photo Gallery 1.4.10 Pluginmgr.PHP Remote File Include Vulnerability
• JCCorp URLShrink Free 1.3.1 CreateURL.PHP Remote File Include Vulnerability
• MindTouch DekiWiki Gooseberry PopUp-NoTopic.PHP Cross-Site Scripting Vulnerability
• Webo 1.0 FolderTree.PHP Remote File Include Vulnerability
• Magic CMS 4.2.747 MySave.PHP Remote File Include Vulnerability
• NetForo! 0.1 Down.PHP Local File Include Vulnerability
• GaziYapBoz Game Portal Kategori.ASP SQL injection Vulnerability
• PostGuestbook 0.6.1 Header.PHP Remote File Include Vulnerability
• Kayako SupportSuite 3.4.10 Index.PHP Multiple HTML Injection Vulnerabilities
• Kayako SupportSuite 3.4.10 Index.PHP Multiple HTML Injection Vulnerabilities
• CPanel 10 DNSlook.HTML Cross-Site Scripting Vulnerability
• Cpanel 10.8.2 Select.HTML Cross-Site Scripting Vulnerability
• PHPPeanuts 1.2 Inspect.PHP Remote File Include Vulnerability
• Xoops 2.0.16 Group.PHP SQL Injection Vulnerability
• Xoops 2.0.16 Table_Broken.PHP SQL Injection Vulnerability
• EPortfolio 1.0 Client Side Input Validation Vulnerability
• PPCal Shopping Cart 3.3 Cross-Site Scripting Vulnerability
• Monitor-Line Links Management 1.0 Index.PHP SQL Injection Vulnerability
• Sava’s Guestbook 23.11.2006 Cross-Site Scripting Vulnerability
• Sava’s Guestbook 23.11.2006 SQL Injection Vulnerability
• WordPress 2.1.1 Command Execution Backdoor Vulnerability
• Extreme PHPBB 3.0.1 PHPBB_Root_Path Remote File Include Vulnerability